Authentication API Guide


ChannelCandy can provide SSO (Single Sign On) to your infrastructure. In other words, we can easily interface with your partner management system. This allows your partners to access their mobile app using the same credentials they would to log in to your portal.

How does it work?

Your infrastructure can allow us access in a couple of different models:

Seamless Integration to your Infrastructure Resources

To provide your users with a seamless experience, ensure your authentication specific cookies have an actual expiration date timestamp set; and are not Session-level cookies (i.e., disappear when app/browser closes).  Alternatively, provide an authentication token which will be passed in all secure infrastructure links.  This allows the user to be automatically authenticated into the secure resource without having to re-enter credentials.

OAUTH based authentication

ChannelCandy is an OAUTH2.0 consumer, if your infrastructure can act as an OAUTH 2.0 Provider, this is the easiest and most secure solution.

SAML based authentication

ChannelCandy also support SAML 1.0 and 2.0 based authorization. This is also a standards based, highly secure solution.

URL based authentication           

In this scenario you provide us with a URL which we will access to determine if a partner is authorized for access and optionally, what level of access the user should have.

For example: 

The return from the web call can either be in JSON or XML format. It should at a minimum indicate the success of the authentication call and can optionally provide us other information. Here is a simple JSON example:



  user_id: 609,

  partner_id: 957,

  first_name: 'natalie',

  last_name: 'bartlett',

  email: '',

  partner_name: 'My Partner Inc.',

  groups: ['Cisco Reseller','Education']

  authentication_token: 'ac452aa80dd929177c0000060920121217231248'



This example provides a few different pieces of information to make the users experience on the app better:

  • Groups - Describe the partner groups or levels the user is part of
  • Demographics - First Name, Last Name etc.

LDAP based authentication 

We can also use LDAP to access your partner management infrastructure. Each LDAP implementation is different, so if this makes sense for your organization, we can provide a custom solution.

Have more questions? Submit a request


Please sign in to leave a comment.